Blockchain & Cryptocurrency, Cryptocurrency Fraud, Fraud Management & Cybercrime Significant Events: Unleash Protocol Hack and LastPass Breach Linked to Crypto Thefts Rashmi Ramesh (rashmiramesh_) • January 8, 2026 Image: Shutterstock In this latest weekly review by Information Security Media Group, we analyze significant cybersecurity incidents involving digital assets. This week…
Targeted Phishing Campaign Hits Ledger Users Following Global-e Breach A new phishing campaign is currently targeting users of Ledger, the leading hardware wallet provider, following a significant data breach at Global-e, a third-party e-commerce company associated with Ledger. The attack appears to have exploited sensitive order data that was leaked,…
In a significant cybersecurity case, a 20-year-old college student has pleaded guilty to stealing over $5 million in cryptocurrency through the illicit practice known as SIM swapping. Joel Ortiz, arrested last year, exploited this technique to target approximately 40 victims, resulting in a guilty plea that could lead to a…
A critical update for the Firefox web browser is urgent, as Mozilla has issued a warning to users regarding a newly discovered zero-day vulnerability. This update comes just days after the release of a fix for another actively exploited vulnerability within Firefox 67.0.3. The most recent vulnerability, identified as CVE-2019-11708,…
Recent Cybersecurity Incidents: A Deep Dive into Breaches and Threats Pooja Tikekar (@PoojaTikekar) • January 1, 1970 Image: Shutterstock/ISMG This week, Information Security Media Group reports significant cybersecurity incidents including a breach tying Clop ransomware to Korean Air vendor data compromise, a sophisticated attack by a China-linked APT leveraging software…
Fraud Management & Cybercrime, Ransomware U.S. Cybersecurity Professionals Plead Guilty to BlackCat Ransomware Scheme Targeting Medical Firms Mathew J. Schwartz (euroinfosec) • December 30, 2025 Image: Kevin Sto/Shutterstock In a significant development within the cybersecurity landscape, two professionals admitted guilt in a Miami federal court after being implicated as affiliates…
Cybercrime, Fraud Management & Cybercrime, Fraud Risk Management Synthetic Entities, AI-Driven Scams, Stablecoin Misuse Pose Key Threats in 2026 Suparna Goswami ( gsuparna) • December 29, 2025 Frank McKenna, PointPredictive; Peter Tapling, U.S. Faster Payments Council; and Steve Lenderman, isolved In 2025, scams leveraging artificial intelligence saw an unprecedented surge,…
Dec 25, 2025Ravie LakshmananData Breach / Financial Crime Recent findings from TRM Labs reveal that encrypted vault backups compromised in the 2022 LastPass data breach have been exploited by cybercriminals to access crypto assets, particularly due to the use of weak master passwords. This criminal activity has reportedly persisted into…
Shortly after cybersecurity researchers raised warnings about two significant vulnerabilities in the SaltStack configuration framework, an ongoing campaign has already begun exploiting these flaws, targeting organizations such as LineageOS, Ghost, and DigiCert. The vulnerabilities, identified as CVE-2020-11651 and CVE-2020-11652, permit attackers to execute arbitrary code on remote servers operating within…
